WordPress International SMS for Contact Form 7 Integration plugin version 1.2 suffers from a cross site request forgery vulnerability.

Slurp version 1.10.2 suffers from a format string vulnerability.

Simple Bakery Shop Management System version 1.0 suffers from a remote SQL injection vulnerability.

H3C SSL VPN suffers from a username enumeration vulnerability during the login sequence.

This Metasploit module exploits a path traversal issue in Nagios XI before version 5.8.5. The path traversal allows a remote and authenticated administrator to upload a PHP web shell and…